Attention! Hackers have struck again!
It is the largest password leak in history and now the third record-breaking dump of private and sensitive data records published in 2024. The list so far:
- 01/2024: Security researchers discover the “mother of all breaches” the ultimate data leak with 12TB & 26 billion records.
- 06/2024: Publication of 361 million email addresses and the respective passwords.
- 07/2024: Publication of 9,948,575,739 plain text passwords in a hacker forum.
Responsible for the latest publication was a user acting under the pseudonym “ObamaCare”, who had previously published the employee database of a law firm and student applications of a College in Burlington County.
An examination of the published passwords revealed that they were a mixture of old and new records of real passwords used by users around the world.
The consequences of this publication are very likely to be increased attacks on user accounts using this new leaked password data. Hacker methods such as credential stuffing will be used.
ACTION REQUIRED: Check your passwords now and make sure they are not part of a password leak. Below you can find out how to do this easily and conveniently on our website. You can also find out whether you are using a strong password or whether you should change it.
How do I test whether I am using a leaked password?
You can check whether a password is already known and should therefore be changed with just a few clicks. Respective tools use “password databases” that contain compromised passwords and check whether the password used by the user has already been published.
It is important that a password entered by the user is NEVER stored in plain text or transmitted to the server. In the Engity demo, our tool only generates a hash value using the password entered and compares this with the hashes from the leaked databases.
To check whether your password is already a leaked password, click on the “Signup” button in the Engity demo tool.
In the following window you only have to enter the password you want to test (the e-mail address is not necessary for this test, nor is the repeated entry of the password).
If the password has actually been part of a data breach, this will be displayed with a corresponding message, otherwise there will be no message.
However, Engity's tool not only allows you to check whether a password has already been leaked. The password strength, the so-called password security, is also assessed. This allows you to see at a glance whether the selected password meets the current security requirements.
Have fun testing!